Dependency Analysis
SharedMoments
Direct and transitive dependency freshness, license, and CVE exposure from the latest SBOM.
43%
Freshness
35
Dependencies
11
Outdated
0
Stale
4.5
Avg Behind
Dependency List
Latest release v2.0.1
| Dependency | Type | Current | Latest | Behind | CVE | License |
|---|---|---|---|---|---|---|
|
mako
pypi
|
Direct | 1.3.5 | 1.3.12 | 7 behind | 2 high | MIT |
|
pyjwt
pypi
|
Direct | 2.10.1 | 2.13.0 | 4 behind | 1 high | MIT |
|
jinja2
pypi
|
Direct | 3.1.4 | 3.1.6 | 2 behind | 3 medium | BSD-2-Clause AND BSD-3-Clause |
|
python-dotenv
pypi
|
Direct | 1.2.1 | 1.2.2 | 1 behind | 1 medium | BSD-3-Clause |
|
sqlalchemy
pypi
|
Direct | 2.0.32 | 2.0.50 | 21 behind | — | MIT |
|
alembic
pypi
|
Direct | 1.13.2 | 1.18.4 | 20 behind | — | MIT |
|
click
pypi
|
Direct | 8.1.7 | 8.4.1 | 10 behind | — | BSD-3-Clause |
|
typing-extensions
pypi
|
Direct | 4.12.2 | 4.15.0 | 9 behind | — | Python-2.0.1 |
|
markupsafe
pypi
|
Direct | 2.1.5 | 3.0.3 | 4 behind | — | BSD-2-Clause AND BSD-3-Clause |
|
bcrypt
pypi
|
Direct | 4.2.0 | 5.0.0 | 3 behind | — | Apache-2.0 |
|
flask-caching
pypi
|
Direct | 2.3.0 | 2.4.0 | 2 behind | — | BSD-2-Clause AND BSD-3-Clause |
|
werkzeug
pypi
|
Direct | 3.1.6 | 3.1.8 | 2 behind | — | BSD-3-Clause |
|
six
pypi
|
Direct | 1.16.0 | 1.17.0 | 1 behind | — | MIT |
|
anthropic
|
Direct | >= 0.34.0 | — | — | — | Unknown |
|
apscheduler
|
Direct | >= 3.10.0 | — | — | — | Unknown |
|
babel
|
Direct | >= 2.14.0 | — | — | — | Unknown |
|
blinker
pypi
|
Direct | 1.9.0 | 1.9.0 | Current | — | MIT |
|
cachelib
pypi
|
Direct | 0.9.0 | — | — | — | BSD-2-Clause AND BSD-3-Clause |
|
cryptography
|
Direct | >= 42.0.0 | — | — | — | Unknown |
|
flask
pypi
|
Direct | 3.1.3 | 3.1.3 | Current | — | BSD-3-Clause |
|
flask-bcrypt
pypi
|
Direct | 1.0.1 | 1.0.1 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
greenlet
|
Direct | >= 3.1.0 | — | — | — | Unknown |
|
imageio-ffmpeg
|
Direct | >= 0.5.1 | — | — | — | Unknown |
|
itsdangerous
pypi
|
Direct | 2.2.0 | 2.2.0 | Current | — | BSD-2-Clause AND BSD-3-Clause |
|
mysql-connector-python
|
Direct | >= 9.0.0 | — | — | — | Unknown |
|
openai
|
Direct | >= 1.40.0 | — | — | — | Unknown |
|
pillow
|
Direct | >= 10.0.0 | — | — | — | Unknown |
|
py-vapid
|
Direct | >= 1.9.0 | — | — | — | Unknown |
|
python-dateutil
pypi
|
Direct | 2.9.0.post0 | 2.9.0.post0 | Current | — | Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference |
|
pytz
pypi
|
Direct | 2024.1 | 2026.2.0 | — | — | MIT |
|
pywebpush
|
Direct | >= 2.0.0 | — | — | — | Unknown |
|
requests
|
Direct | >= 2.31.0 | — | — | — | Unknown |
|
tzdata
pypi
|
Direct | 2024.1 | 2026.2.0 | — | — | Apache-2.0 |
|
webauthn
pypi
|
Direct | 2.7.1 | — | — | — | Unknown |
License Breakdown
Unknown
13
MIT
7
BSD-2-Clause AND BSD-3-Clause
6
BSD-3-Clause
4
Apache-2.0
2
Apache-2.0 AND BSD-3-Clause AND LicenseRef-scancode-unknown-license-reference
1
Python-2.0.1
1
CVE Severity
critical
0
high
2
medium
2
low
0
unknown
0